Privacy policy.

Last updated 15 July 2025

1. What Information Do We Collect?

We collect personal data that you voluntarily provide, including:

  • Name, email address, phone number

  • Billing and delivery address

  • Payment information (processed securely - we never store full card details)

  • Order history and communication preferences

  • Feedback, reviews or contact form messages

We also collect:

  • IP address and device/browser info

  • How you use our site (via cookies and analytics tools)

2. How Do We Collect It?

Your data is collected when you:

  • Place an order or book a service

  • Fill out a contact form

  • Subscribe to our emails

  • Browse our site (via cookies and tracking technologies)

We use Squarespace as our website platform, which collects certain technical data automatically and securely.

3. Why Do We Collect Your Information?

We collect and use your data to:

  1. Provide and operate our services

  2. Process payments and orders

  3. Send confirmations, updates and support messages

  4. Share news and promotions (if you opt in)

  5. Improve website performance through analytics

  6. Comply with legal obligations (like tax records)


4. Legal Basis for Processing

Under UK GDPR, we process your data on the following legal grounds:

  • Consent - for email marketing and non-essential cookies

  • Contractual necessity - to fulfil orders or services

  • Legal obligation - to meet financial and regulatory requirements

  • Legitimate interest - to understand how our website is used and improve your experience.

5. How Do We Store and Protect Your Data?

Our website is hosted on Squarespace, which stores your data securely behind industry-standard firewalls. If you create an order or register interest in our services, your personal data (such as name, email address, and delivery address) may be stored securely within Squarespace's systems.

We sell products and services through our online shop. Payments are processed via PayPal, a secure third-party payment provider. When you check out, you are redirected to PayPal, where your payment is handled on their secure platform. We do not see or store your full card details at any point. PayPal complies with PCI-DSS (Payment Card Industry Data Security Standard) to ensure safe handling of payment information.

6. Sharing Your Information

We never sell your personal data. We only share it with third-party providers we use to:

  • Host our website (Squarespace)

  • Process payments (e.g. PayPal)

  • Send emails (e.g. Mailchimp or Squarespace Email Campaigns)

  • Analyse site traffic (e.g. Google Analytics - with anonymised data where possible)

Some providers may process data outside the UK. When they do, we ensure appropriate safeguards are in place (e.g. Standard Contractual Clauses).

7. Cookies & Analytics

We use cookies to:

  • Ensure the site works properly

  • Understand how visitors use our site

  • Offer a better browsing experience


8. Your Rights

You have rights under UK data protection law, including:

  • Access to the data we hold about you

  • Request correction or deletion of your data

  • Object to or restrict certain processing

  • Withdraw consent (for marketing/cookies)

  • Lodge a complaint with the ICO if you're not happy with how we've handled your data

To exercise any of these rights, just contact us:

Email: hello@annarigbydesign.co.uk

Address: 16 Commerce Square, Lace Market, Nottingham NG1 1HS.


9. Marketing Communications

If you've opted in, we may send you the occasional email about our work, offers or updates. You can unsubscribe anytime via the link in the email or by contacting us.

10. Updates to This Policy

We may update this policy from time to time. Any major changes will be clearly posted here so you can stay informed.

Contact Us

If you have any questions about this Privacy Policy, or want to access or update your data, just get in touch:

Email: hello@annarigbydesign.co.uk

Address: 16 Commerce Square, Lace Market, Nottingham NG1 1HS